Skip to main content

CWE-914

Improper Control of Dynamically-Identified Variables

3 CVEs Avg CVSS 8.0 MITRE
0
CRITICAL
3
HIGH
0
MEDIUM
0
LOW
0
POC
0
KEV

Monthly

CVE-2024-54198 HIGH This Week

In certain conditions, SAP NetWeaver Application Server ABAP allows an authenticated attacker to craft a Remote Function Call (RFC) request to restricted destinations, which can be used to expose. Rated high severity (CVSS 8.5), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure SAP
NVD
CVSS 3.1
8.5
EPSS
0.6%
CVE-2024-24914 HIGH This Week

Authenticated Gaia users can inject code or commands by global variables through special HTTP requests. Rated high severity (CVSS 8.0), this vulnerability is low attack complexity. No vendor patch available.

Code Injection Gaia Os
NVD
CVSS 3.1
8.0
EPSS
0.4%
CVE-2023-33175 PyPI HIGH PATCH This Week

ToUI is a Python package for creating user interfaces (websites and desktop apps) from HTML. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Python Information Disclosure Toui
NVD GitHub
CVSS 3.1
7.5
EPSS
0.7%
EPSS 1% CVSS 8.5
HIGH This Week

In certain conditions, SAP NetWeaver Application Server ABAP allows an authenticated attacker to craft a Remote Function Call (RFC) request to restricted destinations, which can be used to expose. Rated high severity (CVSS 8.5), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure SAP
NVD
EPSS 0% CVSS 8.0
HIGH This Week

Authenticated Gaia users can inject code or commands by global variables through special HTTP requests. Rated high severity (CVSS 8.0), this vulnerability is low attack complexity. No vendor patch available.

Code Injection Gaia Os
NVD
EPSS 1% CVSS 7.5
HIGH PATCH This Week

ToUI is a Python package for creating user interfaces (websites and desktop apps) from HTML. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Python Information Disclosure Toui
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy